LinkedIn Smart Links Feature Abused
Slovakian users have been subjected to a malicious campaign in which phishing operators leverage legitimate services and brands to evade security controls. Using Smart links, a LinkedIn Premium feature abused…
STEAM Users Unfazes Browser in the Browser phishing Attack
Researches from Group-IB has came with a report about sophisticated Browser-in-the-Browser phishing technique is snaring Steam users. Accounts belong to competitive and professional gamers worth hundreds and thousands of dollars…
Red Landon Cyber Espionage Campaign
A cyberespionage group from china dubbed TA423 (aka Red Landon or APT 40) has been seen targetting Australian officials with reconnaissance malware called Scanbox to steal details about the victims…
Phishing Campaign against PyPI
PyPI, has warned of an ongoing phishing campaign that aims to steal developer credentials and inject malicious updates to the packages in the repository. The phishing messages are designed to…
Oktapus Phishing Campaign
Attackers involved in Twilio, MailChimp and Klaviyo, are also compromised more than 130 companies using the same phishing campaign. The primary goal of the threat actors was to obtain Okta…
Chinese Threat Actors using numerous Backdoors to steal info
Researcherd discovered, chinese based threat actors dubbed T428, are used specially crafted phishing emails and six different backdoors to break into and then steal confidential data from military and industrial…
LogoKit Phishing Campaign
Researchers have found, Threat actors makes use of Open Redirect Vulnerabilities in online services and apps to bypass spam filters and deliver phishing content. Threat actors used highly trusted service…
O365 Cookies hijacked to perform Financial Fraud
A massive phishing campaign has been targeting Office 365 users since September 2021 and successfully bypassing MFA set up to protect the accounts. The attackers use proxy servers and phishing…